1 results (0.002 seconds)
CVSS: 5.4EPSS: 0%CPEs: 6EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 6EXPL: 0CVE-2019-4426
https://notcve.org/view.php?id=CVE-2019-4426
13 Dec 2019 — The Case Builder component shipped with 18.0.0.1 through 19.0.0.2 and IBM Case Manager 5.1.1 through 5.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 162772. El componente Case Builder entregado con versiones 18.0.0.1 hasta 19.0.0.2 e IBM Case Manager versiones 5.1.1 hasta 5.3, es vulnerable a ataques de ti... • https://exchange.xforce.ibmcloud.com/vulnerabilities/162772 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •